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CLAIMS: 

L A method for preventing at least in part a hacker from performing unwanted 
activities in a computer system comprising the steps of: 

receiving a request to provide a service from a user; 

determining if said request was transmitted from a user space or a kernel 
space of a memory space of said computer system, wherein if said request was 
transmitted from said user space then said user is an unauthenticated user; and 

determining if said request from said unauthenticated user fails to satisfy a 
security requirement for unauthenticated requests, wherein if said request from said 
unauthenticated user fails to satisfy said security requirement for unauthenticated 
requests then said request is not serviced. 

2. The method as recited in claim 1, wherein if said request from said 
unauthenticated user does not fail to satisfy said security requirement for said 
unauthenticated requests then said request is serviced. 

3. The method as recited in claim 1, wherein if said request was from said kernel 
space then the method further comprises the step of: 

determining whether said request was transmitted from a manager in said 
kernel space configured to establish a secure authorized connection between said user 
and said kernel space if said user is authorized. 

4. The method as recited in claim 3, wherein if said request was not transmitted 
from said manager then said user is said unauthenticated user, wherein the method 
further comprises the step of: 

determining whether said request satisfies said security requirement for 
unauthenticated requests. 

5. The method as recited in claim 4, wherein if said request does not satisfy said 
security requirement for unauthenticated requests then said request is not serviced. 
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6. The method as recited in claim 4, wherein if said request satisfies said security 
requirement for unauthenticated requests then said request is serviced. 

7. The method as recited in claim 3, wherein if said request was transmitted from 
said manager then said user is an authenticated user, wherein the method further 
comprises the step of: 

determining whether said request satisfies a security requirement for 
authenticated requests, 

8. The method as recited in claim 7, wherein if said request does not satisfy said 
security requirement for authenticated requests then said request is not serviced. 

9. The method as recited in claim 7, wherein if said request satisfies said security 
requirement for authenticated requests then said request is serviced. 
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10. A computer program product having a computer readable medium having 
computer program logic recorded thereon for preventing at least in part a hacker from 
performing unwanted activities in a computer system, comprising: 

programming operable for receiving a request to provide a service from a 

user; 

programming operable for determining if said request was transmitted from a 
user space or a kernel space of a memory space of said computer system, wherein if 
said request was transmitted from said user space then said user is an unauthenticated 
user; and 

programming operable for determining if said request from said 
unauthenticated user fails to satisfy a security requirement for unauthenticated 
requests, wherein if said request from said unauthenticated user fails to satisfy said 
security requirement for unauthenticated requests then said request is not serviced. 

11. The computer program product as recited in claim 10, wherein if said request 
from said unauthenticated user does not fail to satisfy said security requirement for 
said unauthenticated requests then said request is serviced. 

12. The computer program product as recited in claim 10, wherein if said request 
was from said kernel space then the computer program product further comprises: 

programming operable for determining whether said request was transmitted 
from a manager in said kernel space configured to establish a secure authorized 
connection between said user and said kernel space if said user is authorized. 

13. The computer program product as recited in claim 12, wherein if said request 
was not transmitted from said manager then said user is said unauthenticated user, 
wherein the computer program product further comprises: 

programming operable for determining whether said request satisfies said 
security requirement for unauthenticated requests. 
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14. The computer program product as recited in claim 13, wherein if said request 
does not satisfy said security requirement for unauthenticated requests then said 
request is not serviced. 

15. The computer program product as recited in claim 13, wherein if said request 
satisfies said security requirement for unauthenticated requests then said request is 
serviced. 

16. The computer program product as recited in claim 12, wherein if said request 
was transmitted from said manager then said user is an authenticated user, wherein 
the computer program product further comprises: 

programming operable for determining whether said request satisfies a 
security requirement for authenticated requests. 

17. The computer program product as recited in claim 16, wherein if said request 
does not satisfy said security requirement for authenticated requests then said request 
is not serviced. 

18. The computer program product as recited in claim 16, wherein if said request 
satisfies said security requirement for authenticated requests then said request is 
serviced. 
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19. A system, comprising: 
a processor; 

a memory unit storing a computer program operable for preventing at least in 
part a hacker from performing unwanted activities in said system; and 

a bus system coupling the processor to the memory unit, wherein the 
computer program is operable for performing the following programming steps: 

receiving a request to provide a service from a user; 

determining if said request was transmitted from a user space or a 
kernel space of a memory space of said system, wherein if said request was 
transmitted from said user space then said user is an unauthenticated user; and 

determining if said request from said unauthenticated user fails to 
satisfy a security requirement for unauthenticated requests, wherein if said request 
from said unauthenticated user fails to satisfy said security requirement for 
unauthenticated requests then said request is not serviced. 

20. The system as recited in claim 19, wherein if said request from said 
unauthenticated user does not fail to satisfy said security requirement for said 
unauthenticated requests then said request is serviced. 

21. The system as recited in claim 19, wherein if said request was from said 
kernel space then the computer program is further operable for performing the 
following programming step: 

determining whether said request was transmitted from a manager in said 
kernel space configured to establish a secure authorized connection between said user 
and said kernel space if said user is authorized. 
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22. The system as recited in claim 21, wherein if said request was not transmitted 
from said manager then said user is said unauthenticated user, wherein the computer 
program is further operable for performing the following programming step: 

determining whether said request satisfies said security requirement for 
unauthenticated requests. 

23 . The system as recited in claim 22, wherein if said request does not satisfy said 
security requirement for unauthenticated requests then said request is not serviced. 

24. The system as recited in claim 22, wherein if said request satisfies said 
security requirement for unauthenticated requests then said request is serviced. 

25. The system as recited in claim 21, wherein if said request was transmitted 
from said manager then said user is an authenticated user, wherein the computer 
program is further operable for performing the following programming step: 

determining whether said request satisfies a security requirement for 
authenticated requests. 

26. The system as recited in claim 25, wherein if said request does not satisfy said 
security requirement for authenticated requests then said request is not serviced. 

27. The system as recited in claim 25, wherein if said request satisfies said 
security requirement for authenticated requests then said request is serviced. 



24 



